• Vulnerability scanners detect CVE-2025-61984 and CVE-2025-61985 (affecting OpenSSH versions prior to 10.1) on the VCF Operations for Networks appliance.
  
  
• Customers may encounter scanner reports flagging these Common Vulnerabilities and Exposures and request remediation or false positive validation.

VCF Operations for Networks

• Broadcom is aware of CVE-2025-61984 and CVE-2025-61985.
  
  
• Refer to the release notes for existing and forthcoming product releases for any updates in relation to these CVEs.
  
  
• Should you require further information contact Broadcom Support by opening a support case per KB 142884 - Creating and managing Broadcom cases